📦 Ollama

A critical authentication bypass vulnerability in Ollama platform allows remote attackers to perform unauthorized model management operations without authentication. This affects all Ollama installati...

A vulnerability in ollama's GGUF decoder allows remote attackers to trigger a denial of service by sending specially crafted input. This affects all systems running vulnerable versions of ollama that ...

A vulnerability in ollama v0.12.10 allows remote attackers to cause denial of service by sending specially crafted GGUF files. The readGGUFV1String function fails to properly validate string length va...

A null pointer dereference vulnerability in Ollama versions up to 0.3.14 allows attackers to upload specially crafted GGUF model files that crash the server, causing denial of service. This affects al...

A memory exhaustion vulnerability in Ollama allows attackers to upload specially crafted GGUF model files that cause unlimited memory allocation, leading to Denial of Service. This affects all Ollama ...

A vulnerability in Ollama versions up to 0.3.14 allows attackers to upload malicious GGUF model files that trigger a division by zero error, causing server crashes and denial of service. This affects ...

A divide-by-zero vulnerability in ollama/ollama v0.3.3 allows attackers to cause denial of service by importing malicious GGUF models with crafted block_count values. This affects anyone running vulne...

A vulnerability in Ollama versions up to 0.3.14 allows attackers to upload specially crafted gguf model files that cause an out-of-bounds read, crashing the server and creating a Denial of Service con...

This vulnerability in Ollama allows attackers to discover which files exist on the server via path traversal in the api/push route. It affects all deployments of Ollama versions before 0.1.46. This in...

This vulnerability allows attackers to crash Ollama servers by uploading a specially crafted GGUF file and triggering a segmentation fault through the CreateModel route. All Ollama instances running v...

This vulnerability in Ollama allows attackers to bypass path validation when retrieving model files, potentially leading to arbitrary file read or remote code execution. It affects all Ollama installa...

This vulnerability in Ollama v0.1.33 allows attackers to delete arbitrary files by sending a specially crafted packet to the /api/pull endpoint. It affects systems running vulnerable versions of Ollam...